The SUSE Linux Enterprise 11 SP3 Teradata kernel was updated to fix bugs and security issues.
The following security issues have been fixed:
- aacraid: Check size values after double-fetch from user (CVE-2016-6480 bsc#991608). - aacraid: Prevent out-of-bounds access due to changing fip header sizes (bsc#991608, CVE-2016-6480). - bluetooth: Fix potential NULL dereference in RFCOMM bind callback (bsc#1003925, CVE-2015-8956). - cdc-acm: Added sanity checking for probe() (bsc#993891). - kabi: Revert xt_compat_match_from_user signature change (CVE-2016-4997 bsc#986362). - kaweth: Fix firmware download (bsc#993890). - kaweth: Fix oops upon failed memory allocation (bsc#993890). - kvm/x86: Fix SYSENTER emulation (bsc#994618 CVE-2015-0239). - kvm/x86: Reload pit counters for all channels when restoring state (bsc#960689 CVE-2015-7513). - netfilter/arp_tables: Simplify translate_compat_table args (CVE-2016-4997 bsc#986362). - netfilter/ip6_tables: Simplify translate_compat_table args (CVE-2016-4997 bsc#986362). - netfilter/ip_tables: Simplify translate_compat_table args (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Add and use xt_check_entry_offsets (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Add compat version of xt_check_entry_offsets (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Assert minimum target size (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Check for bogus target offset (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Check standard target size too (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Do compat validation via translate_table (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Don't move to non-existent next rule (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Don't reject valid target size on some architectures (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Kill check_entry helper (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Speed up jump target validation (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Validate all offsets and sizes in a rule (CVE-2016-4997 bsc#986362). - netfilter/x_tables: Validate targets of jumps (CVE-2016-4997 bsc#986362). - netfilter/x_tables: xt_compat_match_from_user doesn't need a retval (CVE-2016-4997 bsc#986362). - net: Fix use after free in the recvmmsg exit path (CVE-2016-7117 bsc#1003077). - pagemap: Do not leak physical addresses to non-privileged userspace (bsc#994759 CVE-2016-0823). - ppp: defer netns reference release for ppp channel (bsc#980371 CVE-2016-4805). - scsi/arcmsr: Buffer overflow in arcmsr_iop_message_xfer() (bsc#999932 CVE-2016-7425). - tcp: Fix use after free in tcp_xmit_retransmit_queue() (CVE-2016-6828 bsc#994296). - tcp: Make challenge acks less predictable (CVE-2016-5696 bsc#989152). - unix: Properly account for FDs passed over unix sockets (bsc#839104, CVE-2013-4312). - usb: Fix typo in wMaxPacketSize validation (bsc#991665). - usb: Validate wMaxPacketValue entries in endpoint descriptors (bsc#991665).
Additionally the following non-security bugs have been fixed:
- Backport HyperV drivers from 11-SP4 (fate#317533, bsc#986337). - kdump: Fix crash_kexec()/smp_send_stop() race in panic() (bsc#937444). - kexec: Fix race between panic() and crash_kexec() called directly (bsc#937444). - mm: Fix sleeping function warning from __put_anon_vma (bsc#1005857). - panic/x86: Allow cpus to save registers even if they (bsc#940946). - panic/x86: Fix re-entrance problem due to panic on (bsc#937444). - pci: Disable Bus Master only on kexec reboot (bsc#920110). - pci: Disable Bus Master on PCI device shutdown (bsc#920110). - pci: Disable Bus Master unconditionally in pci_device_shutdown() (bsc#920110). - pci: Don't try to disable Bus Master on disconnected PCI devices (bsc#920110). - xen/panic/x86: Allow cpus to save registers even if they (bsc#940946). - xen/panic/x86: Fix re-entrance problem due to panic on (bsc#937444).
openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SUSE Linux Enterprise Server for SAP Applications 11 SP1-CLIENT-TOOLS SUSE Linux Enterprise Server for SAP Applications 11 SP1-LTSS SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP2-LTSS SUSE Linux Enterprise Server for SAP Applications 11 SP3 SUSE Linux Enterprise Server for SAP Applications 11 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 11-SECURITY SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP1-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP2-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12-LTSS SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE OpenStack Cloud 5 SUSE OpenStack Cloud 6